Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Remkon Device Manager Security Vulnerabilities

cve
cve

CVE-2021-38611

A command-injection vulnerability in the Image Upload function of the NASCENT RemKon Device Manager 4.0.0.0 allows attackers to execute arbitrary commands, as root, via shell metacharacters in the filename parameter to assets/index.php.

9.8CVSS

9.6AI Score

0.002EPSS

2021-08-24 12:15 PM
23
cve
cve

CVE-2021-38612

In NASCENT RemKon Device Manager 4.0.0.0, a Directory Traversal vulnerability in a log-reading function in maintenance/readLog.php allows an attacker to read any file via a specialized URL.

7.5CVSS

7.3AI Score

0.005EPSS

2021-08-24 12:15 PM
21
cve
cve

CVE-2021-38613

The assets/index.php Image Upload feature of the NASCENT RemKon Device Manager 4.0.0.0 allows attackers to upload any code to the target system and achieve remote code execution.

9.8CVSS

9.8AI Score

0.014EPSS

2021-08-24 12:15 PM
22